[users] clamav/clamd selinux problems
Jan-Frode Myklebust
janfrode at tanso.net
Thu Nov 29 22:33:15 CET 2007
On 11/29/07, Roger Håkansson <hson at ludd.luth.se> wrote:
>
>
> Sure, if you are running both it might seem like a good idea to have the
> clamd-socket in /var/spool/amavisd, but for those of us who don't use
> amavisd at all, its just silly to have a directory created which have
> nothing to do with clamd (not to speak of the fact that the user and
> group which would own the directory doesn't exist either).
> /var/run/clamav/clamd.sock seems like a more appropriate place to put
> the socket.
Guess I used /var/spool/amavisd/clamd.sock since that was the only
place the name "clamd.sock" was listed in the default policy. I see
now that /var/run/clamav/* should work just as well:
# grep clamd_var_run_t *
file_contexts:/var/run/clamav(/.*)? system_u:object_r:clamd_var_run_t:s0
file_contexts:/var/run/amavis(d)?/clamd\.pid --
system_u:object_r:clamd_var_run_t:s0
file_contexts:/var/spool/amavisd/clamd\.sock -s
system_u:object_r:clamd_var_run_t:s0
-jf
More information about the users
mailing list